Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/XdjkmJeYOJM01PDXZFZ74hz1MN0.roa
File: XdjkmJeYOJM01PDXZFZ74hz1MN0.roa (raw, json)
Hash identifier: IlvnYDzt6CjPPtTQVlqvurFu0Qy9DJBxqii0g/WPAWo=
Subject key identifier: 5D:D8:E4:98:97:98:38:93:34:D4:F0:D7:64:56:7B:E2:1C:F5:30:DD
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018B5FDC9EB9A392FC91CEEE5B7458BC6C32
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/XdjkmJeYOJM01PDXZFZ74hz1MN0.roa
Signing time: Tue 24 Oct 2023 04:06:15 +0000
ROA not before: Tue 24 Oct 2023 04:06:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.139.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Oct 2023 04:23:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5f:dc:9e:b9:a3:92:fc:91:ce:ee:5b:74:58:bc:6c:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Oct 24 04:06:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dd8e4989798389334d4f0d764567be21cf530dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6d:5c:4e:2a:dc:09:27:4d:7d:b2:48:0e:30:
87:77:20:1a:d4:f3:ce:33:f9:07:8e:1b:11:39:d8:
d1:2d:1f:34:80:ee:c1:0a:35:fd:15:75:5c:f5:a2:
69:d0:aa:98:0f:a1:ae:9c:13:9f:61:74:3d:90:59:
cc:27:37:93:ef:44:80:96:87:00:1a:38:a4:4c:c6:
af:5d:51:96:80:21:6e:ae:4f:14:9a:5e:70:cb:f6:
22:8d:ae:22:ed:41:d1:5f:9e:2f:b2:aa:64:71:71:
93:03:5a:bb:9e:2e:3b:95:6b:3a:e9:0b:44:76:be:
cf:40:40:58:0d:fb:13:fc:3e:08:6d:27:93:f6:aa:
da:8a:cc:48:f4:d1:e1:17:62:f0:c2:f3:5c:9f:fd:
f4:2b:c9:2c:63:e0:1f:96:cd:83:a6:f5:78:c9:ca:
b4:3e:03:70:b7:dc:8d:d9:71:a5:75:89:86:76:08:
91:f4:b1:4f:f4:1c:00:0c:b2:f8:f0:0b:c6:6c:2b:
b1:b5:97:f3:88:59:8a:c0:75:09:d2:94:1c:ec:b3:
dc:04:19:5c:5a:ad:48:09:44:6f:c0:31:4f:02:ef:
ec:83:17:6c:9b:a0:fe:fe:6d:f1:d9:f8:6d:a0:49:
58:7a:27:86:1b:92:86:b6:45:a0:3b:dc:bf:57:e2:
04:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D8:E4:98:97:98:38:93:34:D4:F0:D7:64:56:7B:E2:1C:F5:30:DD
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/XdjkmJeYOJM01PDXZFZ74hz1MN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.198.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:17:ee:d6:fd:09:d7:58:ba:33:19:58:f8:f7:ff:47:65:b4:
1a:a8:bb:cb:51:6e:e5:7c:ea:0a:fe:c9:c6:24:4f:01:f3:c7:
2d:8a:62:d0:7b:2d:67:1a:0e:53:34:d0:f5:48:77:7f:7f:51:
73:6c:f8:1f:16:8a:0d:20:e7:cd:9c:e3:ac:08:ed:c1:8f:8d:
27:f8:3c:3d:bb:cb:64:8e:42:80:f9:8f:4b:28:ad:8d:46:93:
e9:6a:90:a3:de:c5:81:11:25:49:d5:b6:3b:b7:e2:46:14:9b:
ff:60:20:0d:11:72:6e:21:b6:f9:77:b8:33:24:2e:72:9c:2e:
3d:1c:fd:cf:d4:3f:ad:ee:d3:bc:08:ac:b5:bd:20:36:e1:50:
11:0e:8d:21:b3:6f:7c:73:aa:da:5c:10:1c:da:0d:a0:d6:bb:
6f:71:65:ee:2d:c0:d4:f4:4c:08:2a:fe:6e:ed:aa:2f:4b:5d:
73:97:2d:d1:c5:10:99:74:53:62:95:2b:25:c0:3e:52:9e:9e:
f3:1b:fd:6d:ed:4f:2a:4e:17:f3:80:26:2d:85:d6:27:4b:52:
58:eb:02:90:6d:49:64:98:76:36:5b:de:2c:82:42:51:11:d1:
67:86:1e:e9:1b:82:88:84:a0:20:40:60:e9:b2:f0:75:26:c8:
2d:54:e3:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:46 2024 by rpki-client on console-fra.rpki-client.org